Thursday, September 21, 2006

WS-Security provides a standard way to secure Web Services. Since based
on SOAP it is agnostic of the stack you are using. When using JAX-RPC
implementation, you are running in a J2EE container. In this post I am
giving a tip to access the Principal object.

I have a service service, and I need to access some user information in
its implementation class ( org.tug.ws.sample.SimpleServiceImpl
). This service is secure with WS-Security, with for example simple
authentication, the following screenshot, is the configuration of
inbound security in OracleAS 10gR3:

So the service is secured, here the code that you have to add
in your service implementation (or handlers) to access the Principal
object.

Tuesday, September 19, 2006

Last week I discussed dynamic languages with some consultants. This discussion was done in the context of integration of scripting technologies into Java EE environment. So the integration to the VM is important, I also think that the learning curve is a thing to consider.

It is true that, like any developer Iike to learn things everyday, this is why I have done some development with PHP, with Ruby On Rails, and obviously with Groovy, Javascript and many other dynamic languages.

The discussion moved quickly to an argument about which language is the best... Hard to say, but I would expect that to be more productive in enterprise it is better to use a "Java Like" syntax that allows you to leverage the power of scripts. Based on this comment it is for me a no brainer to say that Groovy is more interesting to a core Java developer than JRuby (or other Jython, Jacl, ...). I do not even want to go in the details about VM integration, performances and so on...